$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/V20FQeMvJK1-T0La1dmmNHJ0-Zs.roa File: V20FQeMvJK1-T0La1dmmNHJ0-Zs.roa (raw, json) Hash identifier: 2JjeoZtgoRaY8PKoqjC4QEQfG62pfk0NhfUwAP7HkNQ= Subject key identifier: 57:6D:05:41:E3:2F:24:AD:7E:4F:42:DA:D5:D9:A6:34:72:74:F9:9B Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0D6A Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/V20FQeMvJK1-T0La1dmmNHJ0-Zs.roa Signing time: Mon 10 Feb 2025 14:13:18 +0000 ROA not before: Mon 10 Feb 2025 14:13:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131596 IP address blocks: 61.58.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3434 (0xd6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Feb 10 14:13:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=576D0541E32F24AD7E4F42DAD5D9A6347274F99B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4f:83:92:94:98:c9:89:e4:ed:05:69:83:1a: 3a:91:f5:28:99:45:21:f7:72:06:46:6b:98:3e:70: 0a:de:91:aa:03:da:c5:71:2d:95:de:b7:66:59:76: 48:ad:5d:8a:55:9d:f6:a2:67:bd:d7:c4:4f:3a:82: d2:fb:84:5b:e3:57:a8:27:e1:b0:c3:95:5c:78:b9: 01:a4:f7:d1:28:62:b0:5b:f0:74:2f:7a:24:9d:be: b1:3a:86:f9:98:41:1e:9a:e7:c4:db:c3:3c:5f:79: a4:6c:cd:98:7b:ed:3d:ad:46:0a:e9:7a:7c:0c:17: 8e:cb:cf:d6:73:c2:5f:a6:fe:d7:5e:52:cc:58:91: f4:10:77:0d:b1:0b:24:ac:6c:b3:07:df:1e:79:62: 85:77:0b:d0:83:41:6c:df:76:92:ea:18:e8:0e:90: 11:3e:1a:08:5f:60:9f:40:3f:28:f9:9e:75:36:af: 6f:aa:61:20:bd:d7:68:cd:22:fe:0d:d2:e7:79:92: d3:58:4f:c8:54:33:7a:61:aa:de:bd:6e:3a:32:50: 1c:e1:27:a0:d1:32:c9:72:87:61:be:cc:a6:bc:e7: e0:e8:e3:dd:62:23:61:1c:ea:4a:d3:63:a1:01:a9: 2e:a8:86:b0:a0:a9:26:8b:15:3b:98:d6:b3:d5:ca: 70:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:6D:05:41:E3:2F:24:AD:7E:4F:42:DA:D5:D9:A6:34:72:74:F9:9B X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/V20FQeMvJK1-T0La1dmmNHJ0-Zs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.64.0/20 Signature Algorithm: sha256WithRSAEncryption 91:af:c0:8f:ae:ef:19:b2:fb:d8:ee:b1:4a:a3:af:a3:bd:59: b8:ee:4d:f0:26:50:cb:8c:46:d1:35:7b:ff:1e:87:53:94:19: b9:72:6a:1b:a4:f5:94:85:a2:56:46:22:91:75:6e:9d:fd:00: db:26:2f:57:b5:d5:bb:31:9f:0c:de:be:ea:11:13:da:98:a0: e5:10:e4:29:66:1e:63:87:84:76:1d:58:01:f8:ca:12:03:b3: f8:2c:25:07:ee:00:c8:d6:c4:dc:e8:18:75:c4:75:c6:59:12: 50:06:3e:25:6e:2d:08:c1:ba:56:b9:a3:b8:e0:28:6c:43:37: 27:42:bb:06:88:13:51:28:e6:cb:e7:ae:27:c3:2b:67:0f:07: 6b:97:b2:78:b8:6d:28:0d:5f:59:02:98:1a:35:ef:a9:3f:78: db:b4:47:ad:dc:18:1e:77:8b:87:1c:1d:e2:4d:15:cf:ed:0b: ef:20:6f:0d:c2:c3:92:c4:9c:75:2e:0b:70:ce:b6:96:72:b0: b2:2c:da:b9:c2:a6:9d:cd:3c:7c:fe:a8:bd:ac:4e:d9:45:a7: 89:b0:78:d9:f4:eb:ba:eb:06:51:16:06:bd:ec:5f:da:03:b4: 19:e5:0a:45:6d:b4:c8:eb:5c:81:70:18:f2:04:95:13:23:1a: a9:8a:00:15 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDWowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTAyMTAx NDEzMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU3NkQwNTQxRTMyRjI0 QUQ3RTRGNDJEQUQ1RDlBNjM0NzI3NEY5OUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTT4OSlJjJieTtBWmDGjqR9SiZRSH3cgZGa5g+cArekaoD2sVx LZXet2ZZdkitXYpVnfaiZ73XxE86gtL7hFvjV6gn4bDDlVx4uQGk99EoYrBb8HQv eiSdvrE6hvmYQR6a58TbwzxfeaRszZh77T2tRgrpenwMF47Lz9Zzwl+m/tdeUsxY kfQQdw2xCySsbLMH3x55YoV3C9CDQWzfdpLqGOgOkBE+GghfYJ9APyj5nnU2r2+q YSC912jNIv4N0ud5ktNYT8hUM3phqt69bjoyUBzhJ6DRMslyh2G+zKa85+Do491i I2Ec6krTY6EBqS6ohrCgqSaLFTuY1rPVynCZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUV20FQeMvJK1+T0La1dmmNHJ0+ZswHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9WMjBGUWVNdkpLMS1UMExhMWRt bU5ISjAtWnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTpA MA0GCSqGSIb3DQEBCwUAA4IBAQCRr8CPru8ZsvvY7rFKo6+jvVm47k3wJlDLjEbR NXv/HodTlBm5cmobpPWUhaJWRiKRdW6d/QDbJi9XtdW7MZ8M3r7qERPamKDlEOQp Zh5jh4R2HVgB+MoSA7P4LCUH7gDI1sTc6Bh1xHXGWRJQBj4lbi0IwbpWuaO44Chs QzcnQrsGiBNRKObL564nwytnDwdrl7J4uG0oDV9ZApgaNe+pP3jbtEet3Bged4uH HB3iTRXP7QvvIG8NwsOSxJx1LgtwzraWcrCyLNq5wqadzTx8/qi9rE7ZRaeJsHjZ 9Ou66wZRFga97F/aA7QZ5QpFbbTI61yBcBjyBJUTIxqpigAV -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:44 2025 by rpki-client on console.sobornost.net